Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/QuvB9tka2Q-VQU4IQ41phxH2dVQ.roa
File: QuvB9tka2Q-VQU4IQ41phxH2dVQ.roa (raw, json)
Hash identifier: d940Xvo7cSOx4IUmlzjFv8VqwgLskcooMUXMK+rHKb8=
Subject key identifier: 42:EB:C1:F6:D9:1A:D9:0F:95:41:4E:08:43:8D:69:87:11:F6:75:54
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0184BE16E234D73B42DA04A61CF1006FD0ED
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/QuvB9tka2Q-VQU4IQ41phxH2dVQ.roa
Signing time: Mon 28 Nov 2022 11:54:41 +0000
ROA not before: Mon 28 Nov 2022 11:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 194.87.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:16:e2:34:d7:3b:42:da:04:a6:1c:f1:00:6f:d0:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 28 11:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42ebc1f6d91ad90f95414e08438d698711f67554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4b:c4:d6:28:55:97:09:99:42:c5:33:4e:a0:
c5:24:6e:a4:41:fc:15:d0:20:3b:d9:81:60:54:19:
fe:d3:27:94:d9:ba:1c:cc:54:d4:3d:23:ae:cb:bc:
f9:f3:a1:91:9d:c3:e1:b4:d6:2b:df:7f:3d:95:0d:
fa:c5:5f:f2:bd:4a:f1:5d:3e:7c:50:af:b2:cd:b7:
44:2e:dc:66:cc:2c:41:6b:da:3d:d0:75:73:8b:73:
82:bb:f5:98:cf:6a:88:de:a3:40:ce:ef:86:ce:88:
06:74:1f:28:01:5f:4b:c0:46:5b:b6:72:af:da:a4:
0b:d3:90:39:84:b3:3d:e1:db:cb:9f:b8:69:ef:f1:
f8:ce:e8:6c:62:20:4e:c4:9c:56:dc:50:c0:fe:7f:
a7:81:5b:a2:85:7c:fc:a9:28:7a:ad:52:45:24:5a:
2c:d5:ad:3e:71:e2:9d:29:c6:2c:11:01:5b:7d:cd:
78:0b:42:76:90:92:93:8b:9a:53:27:02:b7:8f:c9:
af:98:f7:9c:ca:98:af:c9:8d:c3:ca:f0:71:9c:01:
55:da:24:4f:ff:4f:75:d8:95:b3:57:bc:5d:89:b4:
eb:8b:33:98:c6:dc:fb:9f:38:7d:bb:81:41:a8:24:
24:c9:a8:47:7b:05:9b:48:2b:52:94:27:1f:38:c0:
c6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:EB:C1:F6:D9:1A:D9:0F:95:41:4E:08:43:8D:69:87:11:F6:75:54
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/QuvB9tka2Q-VQU4IQ41phxH2dVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.120.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:a0:69:15:d8:7f:2e:67:a4:d7:fa:8d:05:e2:f4:0c:37:c5:
68:42:dd:be:1f:63:d3:2b:35:74:23:20:49:fb:f4:85:5e:2c:
01:36:8f:e4:cc:70:15:df:18:cc:3d:55:35:36:45:5d:11:0b:
86:39:fc:d3:cf:ae:82:9a:19:09:33:64:37:13:8a:46:ed:ad:
e5:98:41:65:6d:d2:62:c0:5a:58:10:26:d5:71:87:4b:e1:f8:
ce:8f:43:b1:32:66:ea:e8:97:1b:b6:e7:11:5c:76:7d:a3:5d:
d0:bc:42:e6:95:c6:36:42:9f:36:f5:9e:11:21:02:65:2c:d2:
b0:77:5b:48:c9:a4:df:20:b5:de:e9:66:e1:c0:56:6a:18:fd:
88:3c:36:5c:fe:5b:69:24:02:7a:c4:53:5b:c9:ed:18:dd:30:
db:1c:58:d4:b8:c2:2b:ed:39:f1:07:ab:3c:ba:2e:49:17:d2:
6d:08:5d:75:85:1d:e1:78:54:99:7d:ef:6b:4c:35:00:36:85:
25:f2:97:57:d1:8f:2a:a1:83:fd:91:15:c5:af:15:79:41:1c:
9b:c4:b1:1d:11:c6:19:d9:39:d0:68:ce:e3:7a:68:20:8e:72:
2c:ce:df:e2:a3:6e:b1:ee:30:c3:2a:4e:27:d9:7b:6e:b9:5a:
36:a6:42:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYS+FuI01ztC2gSmHPEAb9DtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjIxMTI4MTE1NDQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MmViYzFmNmQ5MWFkOTBmOTU0MTRlMDg0MzhkNjk4NzExZjY3NTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokvE1ihVlwmZQsUzTqDFJG6kQfwV
0CA72YFgVBn+0yeU2boczFTUPSOuy7z586GRncPhtNYr3389lQ36xV/yvUrxXT58
UK+yzbdELtxmzCxBa9o90HVzi3OCu/WYz2qI3qNAzu+GzogGdB8oAV9LwEZbtnKv
2qQL05A5hLM94dvLn7hp7/H4zuhsYiBOxJxW3FDA/n+ngVuihXz8qSh6rVJFJFos
1a0+ceKdKcYsEQFbfc14C0J2kJKTi5pTJwK3j8mvmPecypivyY3DyvBxnAFV2iRP
/0912JWzV7xdibTrizOYxtz7nzh9u4FBqCQkyahHewWbSCtSlCcfOMDGQwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFELrwfbZGtkPlUFOCEONaYcR9nVUMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvUXV2Qjl0a2EyUS1WUVU0SVE0MXBoeEgyZFZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwld4MA0G
CSqGSIb3DQEBCwUAA4IBAQBOoGkV2H8uZ6TX+o0F4vQMN8VoQt2+H2PTKzV0IyBJ
+/SFXiwBNo/kzHAV3xjMPVU1NkVdEQuGOfzTz66CmhkJM2Q3E4pG7a3lmEFlbdJi
wFpYECbVcYdL4fjOj0OxMmbq6JcbtucRXHZ9o13QvELmlcY2Qp829Z4RIQJlLNKw
d1tIyaTfILXe6WbhwFZqGP2IPDZc/ltpJAJ6xFNbye0Y3TDbHFjUuMIr7TnxB6s8
ui5JF9JtCF11hR3heFSZfe9rTDUANoUl8pdX0Y8qoYP9kRXFrxV5QRybxLEdEcYZ
2TnQaM7jemggjnIszt/io26x7jDDKk4n2XtuuVo2pkIL
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:57 2023 by rpki-client on console-ams.rpki-client.org